cjoint

Publicité


Publicité

Format du document : text/plain

Prévisualisation

Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x86) Version:31-12-2015
Exécuté par Maryse (administrateur) sur DUFAU-7D006A053 (03-01-2016 20:16:16)
Exécuté depuis C:\Documents and Settings\Maryse\Local Settings\Temporary Internet Files\Content.IE5\WH3JVG2T
Profils chargés: Maryse & (Profils disponibles: Maryse)
Platform: Microsoft Windows XP Professionnel Service Pack 3 (X86) Langue: Français (France)
Internet Explorer Version 8 (Navigateur par défaut: Chrome)
Mode d'amorçage: Normal
Tutoriel pour Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processus (Avec liste blanche) =================

(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)

(Avira Operations GmbH & Co. KG) C:\Program Files\Avira\AntiVir Desktop\sched.exe
(Intel Corporation) C:\WINDOWS\system32\igfxtray.exe
(Intel Corporation) C:\WINDOWS\system32\hkcmd.exe
(Intel Corporation) C:\WINDOWS\system32\igfxpers.exe
(Realtek Semiconductor Corp.) C:\WINDOWS\RTHDCPL.EXE
(Avira Operations GmbH & Co. KG) C:\Program Files\Avira\AntiVir Desktop\avgnt.exe
(France Telecom SA) C:\Program Files\Orange\Connexion Internet Orange\Launcher\Launcher.exe
(Oracle Corporation) C:\Program Files\Fichiers communs\Java\Java Update\jusched.exe
(Dropbox, Inc.) C:\Program Files\Dropbox\Client\Dropbox.exe
(France Telecom SA) C:\PROGRA~1\FICHIE~1\France Telecom\Shared Modules\AlertModule\0\AlertModule.exe
(Microsoft Corporation) C:\Program Files\Messenger\msmsgs.exe
(SEIKO EPSON CORPORATION) C:\WINDOWS\system32\spool\drivers\w32x86\3\E_FATILHE.EXE
(Avira Operations GmbH & Co. KG) C:\Program Files\Avira\AntiVir Desktop\avguard.exe
(France Telecom SA) C:\PROGRA~1\FICHIE~1\France Telecom\Shared Modules\FTRTSVC\0\FTRTSVC.exe
(Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
(Intel Corporation) C:\Program Files\Intel\Intel(R) Management Engine Components\DAL\Jhi_service.exe
(Intel Corporation) C:\Program Files\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(France Telecom SA) C:\Program Files\Orange\Connexion Internet Orange\Systray\SystrayApp.exe
(France Telecom SA) C:\Program Files\Orange\Connexion Internet Orange\Connectivity\ConnectivityManager.exe
(HP) C:\WINDOWS\system32\HPZipm12.exe
() C:\Program Files\CyberLink\Shared Files\RichVideo.exe
() C:\WINDOWS\Installer\{A3D69C13-0953-82F7-1586-D79BF56F0AFC}\syshost.exe
(TeamViewer GmbH) C:\Program Files\TeamViewer\Version9\TeamViewer_Service.exe
(France Telecom SA) C:\Program Files\Orange\Connexion Internet Orange\Connectivity\Corecom\CoreCom.exe
(Intel Corporation) C:\Program Files\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
(McAfee, Inc.) C:\Program Files\McAfee Security Scan\3.11.266\SSScheduler.exe
(Avira Operations GmbH & Co. KG) C:\Program Files\Avira\Launcher\Avira.ServiceHost.exe
() C:\Program Files\PC Sync\Voxsync.exe
() C:\Program Files\PC Sync\SyncManager.exe
(Avira Operations GmbH & Co. KG) C:\Program Files\Avira\AntiVir Desktop\avshadow.exe
(Microsoft Corporation) C:\WINDOWS\system32\wscntfy.exe
(France Telecom SA) C:\Program Files\Orange\Connexion Internet Orange\Connectivity\Corecom\OraConfigRecover.exe
(Oracle Corporation) C:\Program Files\Fichiers communs\Java\Java Update\jucheck.exe
(Avira Operations GmbH & Co. KG) C:\Program Files\Avira\AntiVir Desktop\avscan.exe
(Microsoft Corporation) C:\WINDOWS\system32\dllhost.exe
(Microsoft Corporation) C:\WINDOWS\system32\dllhost.exe
(Malwarebytes) C:\Program Files\Malwarebytes Anti-Malware\mbam.exe
(Malwarebytes) C:\Program Files\Malwarebytes Anti-Malware\mbamresearch.exe
(TeamViewer GmbH) C:\Program Files\TeamViewer\Version9\TeamViewer.exe
(TeamViewer GmbH) C:\Program Files\TeamViewer\Version9\tv_w32.exe
() C:\Program Files\Speed Test (4354)\BackgroundHost.exe
() C:\Program Files\Free Games 111\BackgroundHost.exe
(Microsoft Corporation) C:\Program Files\Internet Explorer\iexplore.exe
(Microsoft Corporation) C:\Program Files\Internet Explorer\iexplore.exe
(Microsoft Corporation) C:\Program Files\Internet Explorer\iexplore.exe
(Farbar) C:\Documents and Settings\Maryse\Local Settings\Temporary Internet Files\Content.IE5\WH3JVG2T\FRST[1].exe


==================== Registre (Avec liste blanche) ===========================

(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)

HKLM\...\Run: [RTHDCPL] => C:\WINDOWS\RTHDCPL.EXE [20065384 2011-12-05] (Realtek Semiconductor Corp.)
HKLM\...\Run: [avgnt] => C:\Program Files\Avira\AntiVir Desktop\avgnt.exe [803200 2015-12-15] (Avira Operations GmbH & Co. KG)
HKLM\...\Run: [ORAHSSSessionManager] => C:\Program Files\Orange\Connexion Internet Orange\SessionManager\SessionManager.exe [135920 2009-08-24] (France Telecom SA)
HKLM\...\Run: [Adobe ARM] => C:\Program Files\Fichiers communs\Adobe\ARM\1.0\AdobeARM.exe [959904 2013-12-21] (Adobe Systems Incorporated)
HKLM\...\Run: [Java] => "C:\Program Files\Java\jre7\bin\javaw.exe" -jar "C:\Documents and Settings\Maryse\Application Data\Java\Java.jar"
HKLM\...\Run: [Allin1Convert AppIntegrator 32-bit] => C:\PROGRA~1\ALLIN1~2\bar\1.bin\AppIntegrator.exe
HKLM\...\Run: [SunJavaUpdateSched] => C:\Program Files\Fichiers communs\Java\Java Update\jusched.exe [334896 2015-04-30] (Oracle Corporation)
HKLM\...\Run: [Avira SystrayStartTrigger] => C:\Program Files\Avira\Launcher\Avira.SystrayStartTrigger.exe [66320 2015-11-23] (Avira Operations GmbH & Co. KG)
HKLM\...\Run: [Dropbox] => C:\Program Files\Dropbox\Client\Dropbox.exe [24952456 2015-12-08] (Dropbox, Inc.)
HKU\S-1-5-21-839522115-573735546-682003330-1003\...\Run: [MSMSGS] => C:\Program Files\Messenger\msmsgs.exe [1695232 2008-04-13] (Microsoft Corporation)
HKU\S-1-5-21-839522115-573735546-682003330-1003\...\Run: [EPLTarget\P0000000000000000] => C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_FATILHE.EXE [260160 2013-01-24] (SEIKO EPSON CORPORATION)
HKU\S-1-5-21-839522115-573735546-682003330-1003\...\Run: [Java] => "C:\Program Files\Java\jre7\bin\javaw.exe" -jar "C:\Documents and Settings\Maryse\Application Data\Java\Java.jar"
HKU\S-1-5-21-839522115-573735546-682003330-1003\...\Run: [santa_svc] => C:\Documents and Settings\Maryse\Application Data\piuaoacroic.exe
HKU\S-1-5-21-839522115-573735546-682003330-1003-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\Run: [MSMSGS] => C:\Program Files\Messenger\msmsgs.exe [1695232 2008-04-13] (Microsoft Corporation)
HKU\S-1-5-21-839522115-573735546-682003330-1003-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\Run: [EPLTarget\P0000000000000000] => C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_FATILHE.EXE [260160 2013-01-24] (SEIKO EPSON CORPORATION)
HKU\S-1-5-21-839522115-573735546-682003330-1003-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\Run: [Java] => "C:\Program Files\Java\jre7\bin\javaw.exe" -jar "C:\Documents and Settings\Maryse\Application Data\Java\Java.jar"
HKU\S-1-5-21-839522115-573735546-682003330-1003-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\Run: [santa_svc] => C:\Documents and Settings\Maryse\Application Data\piuaoacroic.exe
ShellIconOverlayIdentifiers: [ DropboxExt1] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files\Dropbox\Client\DropboxExt.28.dll [2015-12-08] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt2] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files\Dropbox\Client\DropboxExt.28.dll [2015-12-08] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt3] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files\Dropbox\Client\DropboxExt.28.dll [2015-12-08] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt4] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files\Dropbox\Client\DropboxExt.28.dll [2015-12-08] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt5] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files\Dropbox\Client\DropboxExt.28.dll [2015-12-08] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt6] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files\Dropbox\Client\DropboxExt.28.dll [2015-12-08] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt7] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files\Dropbox\Client\DropboxExt.28.dll [2015-12-08] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt8] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files\Dropbox\Client\DropboxExt.28.dll [2015-12-08] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [Fichiers hors connexion] -> {750fdf0e-2a26-11d1-a3ea-080036587f03} => C:\WINDOWS\System32\cscui.dll [2008-04-13] (Microsoft Corporation)
Startup: C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Démarrage\how_recover+yhr.html [2015-12-17] ()
Startup: C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Démarrage\how_recover+yhr.txt [2015-12-17] ()
Startup: C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Démarrage\McAfee Security Scan Plus.lnk [2015-12-15]
ShortcutTarget: McAfee Security Scan Plus.lnk -> C:\Program Files\McAfee Security Scan\3.11.266\SSScheduler.exe (McAfee, Inc.)
Startup: C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Démarrage\PC Sync.lnk [2012-12-21]
ShortcutTarget: PC Sync.lnk -> C:\Program Files\PC Sync\Voxsync.exe ()
Startup: C:\Documents and Settings\Default User\Menu Démarrer\Programmes\Démarrage\how_recover+yhr.html [2015-12-17] ()
Startup: C:\Documents and Settings\Default User\Menu Démarrer\Programmes\Démarrage\how_recover+yhr.txt [2015-12-17] ()
Startup: C:\Documents and Settings\Maryse\Menu Démarrer\Programmes\Démarrage\how_recover+yhr.html [2015-12-17] ()
Startup: C:\Documents and Settings\Maryse\Menu Démarrer\Programmes\Démarrage\how_recover+yhr.txt [2015-12-17] ()

==================== Internet (Avec liste blanche) ====================

(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)

Winsock: Catalog9 01 C:\Program Files\Avira\AntiVir Desktop\avsda.dll [507984 2014-06-04] (Avira Operations GmbH & Co. KG)
Winsock: Catalog9 02 C:\Program Files\Avira\AntiVir Desktop\avsda.dll [507984 2014-06-04] (Avira Operations GmbH & Co. KG)
Winsock: Catalog9 20 C:\Program Files\Avira\AntiVir Desktop\avsda.dll [507984 2014-06-04] (Avira Operations GmbH & Co. KG)
Hosts: Il y a plus d'un élément dans hosts. Voir la section Hosts de Addition.txt
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1 192.168.1.1
Tcpip\..\Interfaces\{292EC976-CB05-489B-82DA-F81050670EF4}: [DhcpNameServer] 192.168.1.1 192.168.1.1
Tcpip\..\Interfaces\{7AC4A2CB-4AEA-4D2C-9AEF-1BDEA3EE88E2}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{C0083B48-66C0-48FF-9A67-09F3E70D8DFE}: [DhcpNameServer] 192.168.1.1

Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://home.sweetim.com/?crg=3.57010003&ptr=100&st=12&barid={7D8AC3A6-1D53-4A03-B499-1D2752DC35A7}
HKU\S-1-5-21-839522115-573735546-682003330-1003\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.orange.fr/portail
HKU\S-1-5-21-839522115-573735546-682003330-1003\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKU\S-1-5-21-839522115-573735546-682003330-1003-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.orange.fr/portail
HKU\S-1-5-21-839522115-573735546-682003330-1003-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
SearchScopes: HKLM -> DefaultScope {75b4241f-171e-44a3-bf44-23613b6e3e03} URL = hxxp://search.tb.ask.com/search/GGmain.jhtml?p2=^AYY^xdm525^LAFRFR^fr&si=flvrunner&ptb=5471D00F-2B1A-4D11-AAE4-755A1BBCE21C&ind=2014113005&n=780ceced&psa=&st=sb&searchfor={searchTerms}
SearchScopes: HKLM -> {014DB5FA-EAFB-4592-A95B-F44D3EE87FA9} URL =
SearchScopes: HKLM -> {75b4241f-171e-44a3-bf44-23613b6e3e03} URL = hxxp://search.tb.ask.com/search/GGmain.jhtml?p2=^AYY^xdm525^LAFRFR^fr&si=flvrunner&ptb=5471D00F-2B1A-4D11-AAE4-755A1BBCE21C&ind=2014113005&n=780ceced&psa=&st=sb&searchfor={searchTerms}
SearchScopes: HKLM -> {EEE6C360-6118-11DC-9C72-001320C79847} URL = hxxp://search.sweetim.com/search.asp?src=6&crg=3.02010003&ptr=100&st=12&q={searchTerms}&barid={7D8AC3A6-1D53-4A03-B499-1D2752DC35A7}
SearchScopes: HKU\S-1-5-21-839522115-573735546-682003330-1003 -> DefaultScope {75b4241f-171e-44a3-bf44-23613b6e3e03} URL = hxxp://search.tb.ask.com/search/GGmain.jhtml?p2=^AYY^xdm525^LAFRFR^fr&si=flvrunner&ptb=5471D00F-2B1A-4D11-AAE4-755A1BBCE21C&ind=2014113005&n=780ceced&psa=&st=sb&searchfor={searchTerms}
SearchScopes: HKU\S-1-5-21-839522115-573735546-682003330-1003 -> {75b4241f-171e-44a3-bf44-23613b6e3e03} URL = hxxp://search.tb.ask.com/search/GGmain.jhtml?p2=^AYY^xdm525^LAFRFR^fr&si=flvrunner&ptb=5471D00F-2B1A-4D11-AAE4-755A1BBCE21C&ind=2014113005&n=780ceced&psa=&st=sb&searchfor={searchTerms}
SearchScopes: HKU\S-1-5-21-839522115-573735546-682003330-1003 -> {95B7759C-8C7F-4BF1-B163-73684A933233} URL = hxxp://mysearch.avg.com/search?cid={D4BDC707-71AF-4686-957C-B0B35A748CC2}&mid=Unknown&lang=fr&ds=ub011&coid=avgtbdisub&pr=sa&d=2014-02-02 19:54:48&v=17.0.0.7&pid=safeguard&sg=&sap=dsp&q={searchTerms}
SearchScopes: HKU\S-1-5-21-839522115-573735546-682003330-1003 -> {afdbddaa-5d3f-42ee-b79c-185a7020515b} URL = hxxp://search.conduit.com/ResultsExt.aspx?q={searchTerms}&SearchSource=4&ctid=CT2724431
SearchScopes: HKU\S-1-5-21-839522115-573735546-682003330-1003 -> {CFF4DB9B-135F-47c0-9269-B4C6572FD61A} URL = hxxp://mystart.incredimail.com//?search={searchTerms}&loc=search_box&a=ThAIDcMwSb
SearchScopes: HKU\S-1-5-21-839522115-573735546-682003330-1003 -> {EEE6C360-6118-11DC-9C72-001320C79847} URL = hxxp://search.sweetim.com/search.asp?src=6&q={searchTerms}&barid={7D8AC3A6-1D53-4A03-B499-1D2752DC35A7}&crg=3.02010003&st=23&st=23&ptr=100
SearchScopes: HKU\S-1-5-21-839522115-573735546-682003330-1003-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0 -> DefaultScope {75b4241f-171e-44a3-bf44-23613b6e3e03} URL = hxxp://search.tb.ask.com/search/GGmain.jhtml?p2=^AYY^xdm525^LAFRFR^fr&si=flvrunner&ptb=5471D00F-2B1A-4D11-AAE4-755A1BBCE21C&ind=2014113005&n=780ceced&psa=&st=sb&searchfor={searchTerms}
SearchScopes: HKU\S-1-5-21-839522115-573735546-682003330-1003-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0 -> {75b4241f-171e-44a3-bf44-23613b6e3e03} URL = hxxp://search.tb.ask.com/search/GGmain.jhtml?p2=^AYY^xdm525^LAFRFR^fr&si=flvrunner&ptb=5471D00F-2B1A-4D11-AAE4-755A1BBCE21C&ind=2014113005&n=780ceced&psa=&st=sb&searchfor={searchTerms}
SearchScopes: HKU\S-1-5-21-839522115-573735546-682003330-1003-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0 -> {95B7759C-8C7F-4BF1-B163-73684A933233} URL = hxxp://mysearch.avg.com/search?cid={D4BDC707-71AF-4686-957C-B0B35A748CC2}&mid=Unknown&lang=fr&ds=ub011&coid=avgtbdisub&pr=sa&d=2014-02-02 19:54:48&v=17.0.0.7&pid=safeguard&sg=&sap=dsp&q={searchTerms}
SearchScopes: HKU\S-1-5-21-839522115-573735546-682003330-1003-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0 -> {afdbddaa-5d3f-42ee-b79c-185a7020515b} URL = hxxp://search.conduit.com/ResultsExt.aspx?q={searchTerms}&SearchSource=4&ctid=CT2724431
SearchScopes: HKU\S-1-5-21-839522115-573735546-682003330-1003-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0 -> {CFF4DB9B-135F-47c0-9269-B4C6572FD61A} URL = hxxp://mystart.incredimail.com//?search={searchTerms}&loc=search_box&a=ThAIDcMwSb
SearchScopes: HKU\S-1-5-21-839522115-573735546-682003330-1003-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0 -> {EEE6C360-6118-11DC-9C72-001320C79847} URL = hxxp://search.sweetim.com/search.asp?src=6&q={searchTerms}&barid={7D8AC3A6-1D53-4A03-B499-1D2752DC35A7}&crg=3.02010003&st=23&st=23&ptr=100
BHO: Speed Test (4354) -> {11C8C9C0-D918-44C0-8B5E-D297DA42F2C7} -> C:\Program Files\Speed Test (4354)\ScriptHost.dll [2013-10-15] ()
BHO: Pas de nom -> {5C255C8A-E604-49b4-9D64-90988571CECB} -> Pas de fichier
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_45\bin\ssv.dll [2015-06-12] (Oracle Corporation)
BHO: Programme d'aide de l'Assistant de connexion Windows Live -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2009-01-22] (Microsoft Corporation)
BHO: Pas de nom -> {95B7759C-8C7F-4BF1-B163-73684A933233} -> Pas de fichier
BHO: Free Games 111 -> {C45EC9F0-8333-465D-9728-074BD41985C9} -> C:\Program Files\Free Games 111\ScriptHost.dll [2014-01-02] (BestOffers)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_45\bin\jp2ssv.dll [2015-06-12] (Oracle Corporation)
Toolbar: HKU\S-1-5-21-839522115-573735546-682003330-1003 -> Pas de nom - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - Pas de fichier
Toolbar: HKU\S-1-5-21-839522115-573735546-682003330-1003 -> Pas de nom - {EEE6C35B-6118-11DC-9C72-001320C79847} - Pas de fichier
Toolbar: HKU\S-1-5-21-839522115-573735546-682003330-1003 -> Pas de nom - {E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39} - Pas de fichier
Toolbar: HKU\S-1-5-21-839522115-573735546-682003330-1003-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0 -> Pas de nom - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - Pas de fichier
Toolbar: HKU\S-1-5-21-839522115-573735546-682003330-1003-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0 -> Pas de nom - {EEE6C35B-6118-11DC-9C72-001320C79847} - Pas de fichier
Toolbar: HKU\S-1-5-21-839522115-573735546-682003330-1003-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0 -> Pas de nom - {E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39} - Pas de fichier
Handler: http\0x00000001 - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\SYSTEM\OLE DB\MSDAIPP.DLL [2010-02-28] (Microsoft Corporation)
Handler: http\oledb - {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\SYSTEM\OLE DB\MSDAIPP.DLL [2010-02-28] (Microsoft Corporation)
Handler: https\0x00000001 - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\SYSTEM\OLE DB\MSDAIPP.DLL [2010-02-28] (Microsoft Corporation)
Handler: https\oledb - {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\SYSTEM\OLE DB\MSDAIPP.DLL [2010-02-28] (Microsoft Corporation)
Handler: ipp\0x00000001 - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\SYSTEM\OLE DB\MSDAIPP.DLL [2010-02-28] (Microsoft Corporation)
Handler: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\Program Files\Windows Live\Messenger\msgrapp.14.0.8117.0416.dll [2010-04-16] (Microsoft Corporation)
Handler: ms-help - {314111c7-a502-11d2-bbca-00c04f8ec294} - C:\Program Files\Fichiers communs\Microsoft Shared\Help\hxds.dll [2013-09-25] (Microsoft Corporation)
Handler: msdaipp\0x00000001 - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\SYSTEM\OLE DB\MSDAIPP.DLL [2010-02-28] (Microsoft Corporation)
Handler: msdaipp\oledb - {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\SYSTEM\OLE DB\MSDAIPP.DLL [2010-02-28] (Microsoft Corporation)
Handler: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\Program Files\Windows Live\Messenger\msgrapp.14.0.8117.0416.dll [2010-04-16] (Microsoft Corporation)

FireFox:
========
FF Plugin: @intel-webapi.intel.com/Intel WebAPI ipt;version=2.0.52 -> C:\Program Files\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2011-12-01] (Intel Corporation)
FF Plugin: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2011-12-01] (Intel Corporation)
FF Plugin: @java.com/DTPlugin,version=11.45.2 -> C:\Program Files\Java\jre1.8.0_45\bin\dtplugin\npDeployJava1.dll [2015-06-12] (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.45.2 -> C:\Program Files\Java\jre1.8.0_45\bin\plugin2\npjp2.dll [2015-06-12] (Oracle Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.30514.0\npctrl.dll [2014-05-13] ( Microsoft Corporation)
FF Plugin: @microsoft.com/WPF,version=3.5 -> C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll [2008-07-29] (Microsoft Corporation)
FF Plugin: @tools.google.com/Google Update;version=3 -> C:\Program Files\Google\Update\1.3.29.1\npGoogleUpdate3.dll [2015-12-05] (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 -> C:\Program Files\Google\Update\1.3.29.1\npGoogleUpdate3.dll [2015-12-05] (Google Inc.)
FF Plugin: Adobe Reader -> C:\Program Files\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll [2014-08-05] (Adobe Systems Inc.)
FF HKLM\...\Firefox\Extensions: [{20a82645-c095-46ed-80e3-08825760534b}] - c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension
FF Extension: Microsoft .NET Framework Assistant - c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension [2012-11-23] [non signé]
FF HKLM\...\Firefox\Extensions: [{336D0C35-8A85-403a-B9D2-65C292C39087}] - C:\Program Files\IB Updater\Firefox => non trouvé(e)

Chrome:
=======
CHR HomePage: Default -> hxxp://www.google.com/
CHR StartupUrls: Default -> "hxxp://www.google.com/"
CHR Profile: C:\Documents and Settings\Maryse\Local Settings\Application Data\Google\Chrome\User Data\Default
CHR Extension: (Google Docs) - C:\Documents and Settings\Maryse\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2015-12-17]
CHR Extension: (Google Drive) - C:\Documents and Settings\Maryse\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-12-17]
CHR Extension: (YouTube) - C:\Documents and Settings\Maryse\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-12-17]
CHR Extension: (Recherche Google) - C:\Documents and Settings\Maryse\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-12-17]
CHR Extension: (Google Docs hors connexion) - C:\Documents and Settings\Maryse\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2015-12-17]
CHR Extension: (New Tab for Chrome) - C:\Documents and Settings\Maryse\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\jifflliplgeajjdhmkcfnngfpgbjonjg [2015-12-17]
CHR Extension: (Speed Test (4354)) - C:\Documents and Settings\Maryse\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\jljheddigenhleadfofeccneimcmlefp [2015-12-17] [UpdateUrl: hxxps://dl.addonupdater.com/speedtest4354/update.chrome.xml] <==== ATTENTION
CHR Extension: (Free Games 111) - C:\Documents and Settings\Maryse\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\lbgfiglojokgabdbhegbpjgojgppppgf [2015-12-17]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Documents and Settings\Maryse\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2015-12-17]
CHR Extension: (Gmail) - C:\Documents and Settings\Maryse\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-12-17]
CHR HKLM\...\Chrome\Extension: [dlnembnfbcpjnepmfjmngjenhhajpdfd] - C:\Program Files\IB Updater\source.crx
CHR HKLM\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM\...\Chrome\Extension: [jifflliplgeajjdhmkcfnngfpgbjonjg] - C:\Program Files\Perion\NewTab\NewTab.crx [2012-12-25]
CHR HKLM\...\Chrome\Extension: [jljheddigenhleadfofeccneimcmlefp] - C:\Documents and Settings\Maryse\Application Data\speedtest4354\speedtest4354.crx [2013-10-15]
CHR HKLM\...\Chrome\Extension: [lbgfiglojokgabdbhegbpjgojgppppgf] - C:\Documents and Settings\Maryse\Application Data\freegames111\freegames111.crx [2013-12-19]

==================== Services (Avec liste blanche) ========================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

"261f6806807f7dbc" => service n'a pas pu être déverrouillé. <===== ATTENTION

S2 AntiVirMailService; C:\Program Files\Avira\AntiVir Desktop\avmailc.exe [930944 2015-12-15] (Avira Operations GmbH & Co. KG)
R2 AntiVirSchedulerService; C:\Program Files\Avira\AntiVir Desktop\sched.exe [466408 2015-12-15] (Avira Operations GmbH & Co. KG)
R2 AntiVirService; C:\Program Files\Avira\AntiVir Desktop\avguard.exe [466408 2015-12-15] (Avira Operations GmbH & Co. KG)
S2 AntiVirWebService; C:\Program Files\Avira\AntiVir Desktop\AVWEBGRD.EXE [1222952 2015-12-15] (Avira Operations GmbH & Co. KG)
R2 Avira.ServiceHost; C:\Program Files\Avira\Launcher\Avira.ServiceHost.exe [249624 2015-11-23] (Avira Operations GmbH & Co. KG)
S2 dbupdate; C:\Program Files\Dropbox\Update\DropboxUpdate.exe [136048 2015-11-15] (Dropbox, Inc.)
S3 dbupdatem; C:\Program Files\Dropbox\Update\DropboxUpdate.exe [136048 2015-11-15] (Dropbox, Inc.)
R2 FTRTSVC; C:\Program Files\Fichiers communs\France Telecom\Shared Modules\FTRTSVC\0\FTRTSVC.exe [69632 2009-08-24] (France Telecom SA) [Fichier non signé]
R2 Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [423136 2011-12-08] (Intel(R) Corporation)
R2 jhi_service; C:\Program Files\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [161560 2011-12-16] (Intel Corporation)
S2 MBAMService; C:\Program Files\Malwarebytes Anti-Malware\mbamservice.exe [1135416 2015-10-05] (Malwarebytes)
S3 McComponentHostService; C:\Program Files\McAfee Security Scan\3.11.266\McCHSvc.exe [235696 2015-12-02] (McAfee, Inc.)
S3 odserv; C:\Program Files\Fichiers communs\Microsoft Shared\OFFICE12\ODSERV.EXE [440696 2011-07-20] (Microsoft Corporation)
S3 ose; C:\Program Files\Fichiers communs\Microsoft Shared\Source Engine\OSE.EXE [145184 2006-10-26] (Microsoft Corporation)
R2 RichVideo; C:\Program Files\CyberLink\Shared Files\RichVideo.exe [272024 2007-05-14] ()
R2 syshost32; C:\WINDOWS\Installer\{A3D69C13-0953-82F7-1586-D79BF56F0AFC}\syshost.exe [136704 2014-11-30] () [Fichier non signé]
S2 Allin1Convert_8hService; C:\PROGRA~1\ALLIN1~2\bar\1.bin\8hbarsvc.exe [X]
S3 NMIndexingService; "C:\Program Files\Fichiers communs\Ahead\Lib\NMIndexingService.exe" [X]
S3 rpcapd; "%ProgramFiles%\WinPcap\rpcapd.exe" -d -f "%ProgramFiles%\WinPcap\rpcapd.ini" [X]

===================== Pilotes (Avec liste blanche) ==========================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

S3 Ambfilt; C:\WINDOWS\System32\drivers\Ambfilt.sys [1691480 2009-11-18] (Creative)
S2 avgntflt; C:\WINDOWS\System32\DRIVERS\avgntflt.sys [106968 2015-12-15] (Avira Operations GmbH & Co. KG)
S1 avipbb; C:\WINDOWS\System32\DRIVERS\avipbb.sys [136272 2015-12-23] (Avira Operations GmbH & Co. KG)
S1 avkmgr; C:\WINDOWS\System32\DRIVERS\avkmgr.sys [37896 2015-12-23] (Avira Operations GmbH & Co. KG)
S3 HPZid412; C:\WINDOWS\System32\DRIVERS\HPZid412.sys [49664 2005-10-28] (HP)
S3 HPZipr12; C:\WINDOWS\System32\DRIVERS\HPZipr12.sys [16496 2005-10-28] (HP)
S3 HPZius12; C:\WINDOWS\System32\DRIVERS\HPZius12.sys [21568 2005-10-28] (HP)
S3 MBAMProtector; C:\WINDOWS\system32\drivers\mbam.sys [23256 2015-10-05] (Malwarebytes)
S3 MBAMSwissArmy; C:\WINDOWS\system32\drivers\MBAMSwissArmy.sys [170200 2016-01-03] (Malwarebytes)
R3 MEI; C:\WINDOWS\System32\DRIVERS\HECI.sys [46080 2011-11-10] (Intel Corporation)
S3 Monfilt; C:\WINDOWS\System32\drivers\Monfilt.sys [1395800 2009-11-18] (Creative Technology Ltd.)
R2 NPF; C:\WINDOWS\System32\drivers\npf.sys [35088 2010-06-25] (CACE Technologies, Inc.)
S3 PCAMPR5; C:\WINDOWS\system32\PCAMPR5.SYS [34688 2009-08-24] (Printing Communications Assoc., Inc. (PCAUSA)) [Fichier non signé]
R3 PCANDIS5; C:\WINDOWS\system32\PCANDIS5.SYS [32128 2009-08-24] (Printing Communications Assoc., Inc. (PCAUSA)) [Fichier non signé]
R0 sr; C:\WINDOWS\System32\DRIVERS\sr.sys [73600 2008-04-13] () [Fichier non signé]
R3 Srv; C:\WINDOWS\System32\DRIVERS\srv.sys [357888 2011-02-17] () [Fichier non signé]
S1 ssmdrv; C:\WINDOWS\System32\DRIVERS\ssmdrv.sys [31848 2015-06-18] (Avira Operations GmbH & Co. KG)
R3 swenum; C:\WINDOWS\System32\DRIVERS\swenum.sys [4352 2008-04-13] () [Fichier non signé]
S3 swmidi; C:\WINDOWS\System32\drivers\swmidi.sys [56576 2008-04-13] () [Fichier non signé]
R3 sysaudio; C:\WINDOWS\System32\drivers\sysaudio.sys [60800 2008-04-13] () [Fichier non signé]
R1 Tcpip; C:\WINDOWS\System32\DRIVERS\tcpip.sys [361600 2008-06-20] () [Fichier non signé]
S3 TDPIPE; C:\WINDOWS\system32\Drivers\TDPIPE.sys [12040 2008-04-13] () [Fichier non signé]
S3 TDTCP; C:\WINDOWS\system32\Drivers\TDTCP.sys [21896 2008-04-13] () [Fichier non signé]
R1 TermDD; C:\WINDOWS\System32\DRIVERS\termdd.sys [40840 2008-04-13] () [Fichier non signé]
S4 Udfs; C:\WINDOWS\system32\Drivers\Udfs.sys [66048 2008-04-13] ()
R3 Update; C:\WINDOWS\System32\DRIVERS\update.sys [384768 2008-04-13] () [Fichier non signé]
S3 usbccgp; C:\WINDOWS\System32\DRIVERS\usbccgp.sys [32384 2013-08-09] () [Fichier non signé]
R3 usbehci; C:\WINDOWS\System32\DRIVERS\usbehci.sys [30336 2009-03-18] () [Fichier non signé]
R3 usbhub; C:\WINDOWS\System32\DRIVERS\usbhub.sys [59520 2008-04-13] () [Fichier non signé]
S3 usbprint; C:\WINDOWS\System32\DRIVERS\usbprint.sys [25856 2008-04-13] () [Fichier non signé]
S3 usbscan; C:\WINDOWS\System32\DRIVERS\usbscan.sys [14976 2013-07-03] () [Fichier non signé]
S3 USBSTOR; C:\WINDOWS\System32\DRIVERS\USBSTOR.SYS [26368 2008-04-13] () [Fichier non signé]
R1 VgaSave; C:\WINDOWS\System32\drivers\vga.sys [20992 2008-04-13] () [Fichier non signé]
R0 VolSnap; C:\WINDOWS\system32\Drivers\VolSnap.sys [53376 2008-04-13] () [Fichier non signé]
R3 Wanarp; C:\WINDOWS\System32\DRIVERS\wanarp.sys [34560 2008-04-13] () [Fichier non signé]
R3 wdmaud; C:\WINDOWS\System32\drivers\wdmaud.sys [83072 2008-04-13] () [Fichier non signé]
S3 WpdUsb; C:\WINDOWS\System32\DRIVERS\wpdusb.sys [38528 2006-10-18] () [Fichier non signé]
R0 WudfPf; C:\WINDOWS\System32\DRIVERS\WudfPf.sys [77568 2006-09-28] () [Fichier non signé]
S3 WudfRd; C:\WINDOWS\System32\DRIVERS\wudfrd.sys [82944 2006-09-28] () [Fichier non signé]
U5 261f6806807f7dbc; C:\Windows\System32\Drivers\261f6806807f7dbc.sys [72832 2014-11-30] () <===== ATTENTION Necurs Rootkit?
S3 gdrv; \??\C:\WINDOWS\gdrv.sys [X]
S4 IntelIde; pas de ImagePath
U1 WS2IFSL; pas de ImagePath

==================== NetSvcs (Avec liste blanche) ===================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)


==================== Un mois - Créés - fichiers et dossiers ========

(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)

2016-01-03 20:15 - 2016-01-03 20:16 - 00000000 ____D C:\FRST
2016-01-03 20:03 - 2016-01-03 20:04 - 00170200 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MBAMSwissArmy.sys
2016-01-03 20:03 - 2016-01-03 20:03 - 00000777 _____ C:\Documents and Settings\All Users\Bureau\Malwarebytes Anti-Malware.lnk
2016-01-03 20:03 - 2016-01-03 20:03 - 00000000 ____D C:\Program Files\Malwarebytes Anti-Malware
2016-01-03 20:03 - 2016-01-03 20:03 - 00000000 ____D C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Malwarebytes Anti-Malware
2016-01-03 20:03 - 2016-01-03 20:03 - 00000000 ____D C:\Documents and Settings\All Users\Application Data\Malwarebytes
2016-01-03 20:03 - 2015-10-05 09:50 - 00121560 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbamchameleon.sys
2016-01-03 20:03 - 2015-10-05 09:50 - 00023256 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbam.sys
2016-01-02 15:28 - 2016-01-02 15:28 - 18506432 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\FlashPlayerInstaller.exe
2015-12-23 23:20 - 2015-12-23 23:20 - 00136272 _____ C:\WINDOWS\system32\Drivers\avipbb.sys
2015-12-23 23:20 - 2015-12-23 23:20 - 00037896 _____ C:\WINDOWS\system32\Drivers\avkmgr.sys
2015-12-17 19:47 - 2015-12-17 19:47 - 03452054 _____ C:\Documents and Settings\Maryse\Bureau\Howto_Restore_FILES.BMP
2015-12-17 19:47 - 2015-12-17 19:47 - 00010666 _____ C:\Documents and Settings\Maryse\Bureau\Howto_Restore_FILES.HTM
2015-12-17 19:38 - 2015-12-17 19:38 - 00010666 _____ C:\Documents and Settings\NetworkService\Local Settings\how_recover+yhr.html
2015-12-17 19:38 - 2015-12-17 19:38 - 00010666 _____ C:\Documents and Settings\NetworkService\Local Settings\Application Data\how_recover+yhr.html
2015-12-17 19:38 - 2015-12-17 19:38 - 00010666 _____ C:\Documents and Settings\NetworkService\how_recover+yhr.html
2015-12-17 19:38 - 2015-12-17 19:38 - 00010666 _____ C:\Documents and Settings\NetworkService\Application Data\how_recover+yhr.html
2015-12-17 19:38 - 2015-12-17 19:38 - 00010666 _____ C:\Documents and Settings\Maryse\Menu Démarrer\Programmes\how_recover+yhr.html
2015-12-17 19:38 - 2015-12-17 19:38 - 00010666 _____ C:\Documents and Settings\Maryse\Menu Démarrer\how_recover+yhr.html
2015-12-17 19:38 - 2015-12-17 19:38 - 00010666 _____ C:\Documents and Settings\Maryse\Local Settings\how_recover+yhr.html
2015-12-17 19:38 - 2015-12-17 19:38 - 00010666 _____ C:\Documents and Settings\Maryse\how_recover+yhr.html
2015-12-17 19:38 - 2015-12-17 19:38 - 00010666 _____ C:\Documents and Settings\how_recover+yhr.html
2015-12-17 19:38 - 2015-12-17 19:38 - 00002566 _____ C:\Documents and Settings\NetworkService\Local Settings\how_recover+yhr.txt
2015-12-17 19:38 - 2015-12-17 19:38 - 00002566 _____ C:\Documents and Settings\NetworkService\Local Settings\Application Data\how_recover+yhr.txt
2015-12-17 19:38 - 2015-12-17 19:38 - 00002566 _____ C:\Documents and Settings\NetworkService\how_recover+yhr.txt
2015-12-17 19:38 - 2015-12-17 19:38 - 00002566 _____ C:\Documents and Settings\NetworkService\Application Data\how_recover+yhr.txt
2015-12-17 19:38 - 2015-12-17 19:38 - 00002566 _____ C:\Documents and Settings\Maryse\Menu Démarrer\how_recover+yhr.txt
2015-12-17 19:38 - 2015-12-17 19:38 - 00002566 _____ C:\Documents and Settings\Maryse\Local Settings\how_recover+yhr.txt
2015-12-17 19:38 - 2015-12-17 19:38 - 00002566 _____ C:\Documents and Settings\Maryse\how_recover+yhr.txt
2015-12-17 19:38 - 2015-12-17 19:38 - 00002566 _____ C:\Documents and Settings\how_recover+yhr.txt
2015-12-17 19:22 - 2015-12-17 19:22 - 00010666 _____ C:\Documents and Settings\Maryse\Local Settings\Application Data\how_recover+yhr.html
2015-12-17 19:22 - 2015-12-17 19:22 - 00002566 _____ C:\Documents and Settings\Maryse\Local Settings\Application Data\how_recover+yhr.txt
2015-12-17 19:09 - 2015-12-17 19:09 - 00010666 _____ C:\Documents and Settings\Maryse\Application Data\how_recover+yhr.html
2015-12-17 19:09 - 2015-12-17 19:09 - 00002566 _____ C:\Documents and Settings\Maryse\Application Data\how_recover+yhr.txt
2015-12-17 19:08 - 2015-12-17 19:08 - 00010666 _____ C:\Documents and Settings\Maryse\AppData\LocalLow\how_recover+yhr.html
2015-12-17 19:08 - 2015-12-17 19:08 - 00010666 _____ C:\Documents and Settings\Maryse\AppData\how_recover+yhr.html
2015-12-17 19:08 - 2015-12-17 19:08 - 00010666 _____ C:\Documents and Settings\LocalService\Menu Démarrer\Programmes\how_recover+yhr.html
2015-12-17 19:08 - 2015-12-17 19:08 - 00010666 _____ C:\Documents and Settings\LocalService\Menu Démarrer\how_recover+yhr.html
2015-12-17 19:08 - 2015-12-17 19:08 - 00010666 _____ C:\Documents and Settings\LocalService\Local Settings\how_recover+yhr.html
2015-12-17 19:08 - 2015-12-17 19:08 - 00010666 _____ C:\Documents and Settings\LocalService\Local Settings\Application Data\how_recover+yhr.html
2015-12-17 19:08 - 2015-12-17 19:08 - 00010666 _____ C:\Documents and Settings\LocalService\how_recover+yhr.html
2015-12-17 19:08 - 2015-12-17 19:08 - 00010666 _____ C:\Documents and Settings\LocalService\Application Data\how_recover+yhr.html
2015-12-17 19:08 - 2015-12-17 19:08 - 00010666 _____ C:\Documents and Settings\Default User\Menu Démarrer\Programmes\how_recover+yhr.html
2015-12-17 19:08 - 2015-12-17 19:08 - 00010666 _____ C:\Documents and Settings\Default User\Menu Démarrer\how_recover+yhr.html
2015-12-17 19:08 - 2015-12-17 19:08 - 00010666 _____ C:\Documents and Settings\Default User\Local Settings\how_recover+yhr.html
2015-12-17 19:08 - 2015-12-17 19:08 - 00010666 _____ C:\Documents and Settings\Default User\Local Settings\Application Data\how_recover+yhr.html
2015-12-17 19:08 - 2015-12-17 19:08 - 00010666 _____ C:\Documents and Settings\Default User\how_recover+yhr.html
2015-12-17 19:08 - 2015-12-17 19:08 - 00010666 _____ C:\Documents and Settings\Default User\Application Data\how_recover+yhr.html
2015-12-17 19:08 - 2015-12-17 19:08 - 00010666 _____ C:\Documents and Settings\All Users\Menu Démarrer\Programmes\how_recover+yhr.html
2015-12-17 19:08 - 2015-12-17 19:08 - 00010666 _____ C:\Documents and Settings\All Users\Menu Démarrer\how_recover+yhr.html
2015-12-17 19:08 - 2015-12-17 19:08 - 00010666 _____ C:\Documents and Settings\All Users\how_recover+yhr.html
2015-12-17 19:08 - 2015-12-17 19:08 - 00002566 _____ C:\Documents and Settings\Maryse\AppData\LocalLow\how_recover+yhr.txt
2015-12-17 19:08 - 2015-12-17 19:08 - 00002566 _____ C:\Documents and Settings\Maryse\AppData\how_recover+yhr.txt
2015-12-17 19:08 - 2015-12-17 19:08 - 00002566 _____ C:\Documents and Settings\LocalService\Menu Démarrer\Programmes\how_recover+yhr.txt
2015-12-17 19:08 - 2015-12-17 19:08 - 00002566 _____ C:\Documents and Settings\LocalService\Menu Démarrer\how_recover+yhr.txt
2015-12-17 19:08 - 2015-12-17 19:08 - 00002566 _____ C:\Documents and Settings\LocalService\Local Settings\how_recover+yhr.txt
2015-12-17 19:08 - 2015-12-17 19:08 - 00002566 _____ C:\Documents and Settings\LocalService\Local Settings\Application Data\how_recover+yhr.txt
2015-12-17 19:08 - 2015-12-17 19:08 - 00002566 _____ C:\Documents and Settings\LocalService\how_recover+yhr.txt
2015-12-17 19:08 - 2015-12-17 19:08 - 00002566 _____ C:\Documents and Settings\LocalService\Application Data\how_recover+yhr.txt
2015-12-17 19:08 - 2015-12-17 19:08 - 00002566 _____ C:\Documents and Settings\Default User\Menu Démarrer\Programmes\how_recover+yhr.txt
2015-12-17 19:08 - 2015-12-17 19:08 - 00002566 _____ C:\Documents and Settings\Default User\Menu Démarrer\how_recover+yhr.txt
2015-12-17 19:08 - 2015-12-17 19:08 - 00002566 _____ C:\Documents and Settings\Default User\Local Settings\how_recover+yhr.txt
2015-12-17 19:08 - 2015-12-17 19:08 - 00002566 _____ C:\Documents and Settings\Default User\Local Settings\Application Data\how_recover+yhr.txt
2015-12-17 19:08 - 2015-12-17 19:08 - 00002566 _____ C:\Documents and Settings\Default User\how_recover+yhr.txt
2015-12-17 19:08 - 2015-12-17 19:08 - 00002566 _____ C:\Documents and Settings\Default User\Application Data\how_recover+yhr.txt
2015-12-17 19:08 - 2015-12-17 19:08 - 00002566 _____ C:\Documents and Settings\All Users\Menu Démarrer\how_recover+yhr.txt
2015-12-17 19:08 - 2015-12-17 19:08 - 00002566 _____ C:\Documents and Settings\All Users\how_recover+yhr.txt
2015-12-15 21:47 - 2015-12-17 19:08 - 00000000 ____D C:\Documents and Settings\All Users\Menu Démarrer\Programmes\McAfee Security Scan Plus
2015-12-14 19:46 - 2015-12-17 19:08 - 00000000 ____D C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Dropbox

==================== Un mois - Modifiés - fichiers et dossiers ========

(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)

2016-01-03 20:16 - 2012-11-23 00:48 - 00000000 ____D C:\Documents and Settings\Maryse\Local Settings\Temp
2016-01-03 20:15 - 2014-02-28 12:28 - 00000000 ____D C:\WINDOWS\system32\NtmsData
2016-01-03 20:15 - 2014-01-25 02:15 - 00000917 _____ C:\WINDOWS\Tasks\EPSON XP-212 213 Series Update {17CED550-F216-4229-8012-3651DD28BE2A}.job
2016-01-03 20:15 - 2014-01-25 02:15 - 00000731 _____ C:\WINDOWS\Tasks\EPSON XP-212 213 Series Invitation {17CED550-F216-4229-8012-3651DD28BE2A}.job
2016-01-03 20:15 - 2012-11-23 01:27 - 00000000 ____D C:\WINDOWS
2016-01-03 20:06 - 2012-11-23 01:31 - 00000000 ___RD C:\Documents and Settings\All Users\Menu Démarrer\Programmes
2016-01-03 20:06 - 2012-11-23 00:48 - 00000000 ___RD C:\Documents and Settings\Maryse\Menu Démarrer\Programmes
2016-01-03 20:03 - 2012-11-23 01:31 - 00000000 ____D C:\Documents and Settings\All Users\Bureau
2016-01-03 20:00 - 2012-11-23 00:48 - 00000000 ____D C:\Documents and Settings\Maryse\Bureau
2016-01-03 20:00 - 2012-11-23 00:41 - 00000000 ____D C:\WINDOWS\Registration
2016-01-03 19:57 - 2014-08-25 22:24 - 00000434 ____H C:\WINDOWS\Tasks\User_Feed_Synchronization-{AA4FB33D-CEB0-46E3-9D5B-6B5A86878572}.job
2016-01-03 19:57 - 2012-11-23 11:50 - 00076160 _____ C:\Documents and Settings\Maryse\Local Settings\Application Data\GDIPFONTCACHEV1.DAT
2016-01-03 19:50 - 2015-11-15 09:45 - 00001174 _____ C:\WINDOWS\Tasks\DropboxUpdateTaskMachineUA.job
2016-01-03 19:50 - 2013-02-27 18:23 - 00002575 _____ C:\Documents and Settings\Maryse\Bureau\Microsoft Office Word 2007.lnk
2016-01-03 19:31 - 2014-08-24 09:35 - 00001056 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
2016-01-03 19:28 - 2012-11-25 19:19 - 00001002 _____ C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
2016-01-03 18:41 - 2015-11-15 09:44 - 00000000 ____D C:\Documents and Settings\Maryse\Local Settings\Application Data\Dropbox
2016-01-03 18:41 - 2001-08-28 13:00 - 00002206 _____ C:\WINDOWS\system32\wpa.dbl
2016-01-03 18:40 - 2015-11-15 09:45 - 00001170 _____ C:\WINDOWS\Tasks\DropboxUpdateTaskMachineCore.job
2016-01-03 18:40 - 2014-08-24 09:35 - 00001052 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
2016-01-03 18:40 - 2014-03-28 20:33 - 00000224 _____ C:\WINDOWS\Tasks\Notification de fin de service de Microsoft Windows XP - à la connexion.job
2016-01-03 18:40 - 2012-11-23 00:47 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2016-01-03 00:20 - 2012-11-23 00:48 - 00000184 ___SH C:\Documents and Settings\Maryse\ntuser.ini
2016-01-03 00:20 - 2012-11-23 00:47 - 00032322 _____ C:\WINDOWS\SchedLgU.Txt
2016-01-02 15:28 - 2012-11-25 19:19 - 00796864 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\FlashPlayerApp.exe
2016-01-02 15:28 - 2012-11-25 19:19 - 00142528 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\FlashPlayerCPLApp.cpl
2015-12-30 14:42 - 2014-08-24 09:41 - 00001811 _____ C:\Documents and Settings\All Users\Bureau\Google Chrome.lnk
2015-12-19 21:47 - 2014-08-20 23:06 - 00169792 _____ C:\Documents and Settings\LocalService\Local Settings\Application Data\FontCache3.0.0.0.dat
2015-12-19 20:28 - 2014-08-20 20:36 - 00000000 ____D C:\Documents and Settings\All Users\Application Data\Package Cache
2015-12-19 20:28 - 2012-11-23 09:18 - 00000000 ____D C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Avira
2015-12-17 19:38 - 2014-03-03 18:49 - 00000000 ____D C:\Documents and Settings\Maryse\Menu Démarrer\Programmes\D-Link
2015-12-17 19:38 - 2014-01-28 09:54 - 00000000 ____D C:\Documents and Settings\NetworkService\Local Settings\Application Data\SearchProtect
2015-12-17 19:38 - 2013-09-23 23:52 - 00000000 ____D C:\Documents and Settings\Maryse\SyncFolder
2015-12-17 19:38 - 2013-06-03 10:01 - 00000000 ____D C:\Documents and Settings\Maryse\Mes documents
2015-12-17 19:38 - 2013-02-27 18:19 - 00000000 __RHD C:\MSOCache
2015-12-17 19:38 - 2013-02-24 12:53 - 00000000 ____D C:\Documents and Settings\Maryse\Menu Démarrer\Programmes\WinRAR
2015-12-17 19:38 - 2012-11-23 12:07 - 00000000 ____D C:\Documents and Settings\Maryse\Tracing
2015-12-17 19:38 - 2012-11-23 11:18 - 00000000 ____D C:\MyWorks
2015-12-17 19:38 - 2012-11-23 11:18 - 00000000 ____D C:\Documents and Settings\Maryse\Menu Démarrer\Programmes\CyberLink DVD Suite
2015-12-17 19:38 - 2012-11-23 10:11 - 00000000 __SHD C:\Documents and Settings\Maryse\PrivacIE
2015-12-17 19:38 - 2012-11-23 09:30 - 00000000 __SHD C:\Documents and Settings\Maryse\UserData
2015-12-17 19:38 - 2012-11-23 01:30 - 00000000 ____D C:\Documents and Settings
2015-12-17 19:38 - 2012-11-23 00:57 - 00000000 ____D C:\Intel
2015-12-17 19:38 - 2012-11-23 00:48 - 00000000 ___RD C:\Documents and Settings\Maryse\Menu Démarrer\Programmes\Démarrage
2015-12-17 19:38 - 2012-11-23 00:48 - 00000000 ___RD C:\Documents and Settings\Maryse\Menu Démarrer\Programmes\Accessoires
2015-12-17 19:38 - 2012-11-23 00:48 - 00000000 ___RD C:\Documents and Settings\Maryse\Menu Démarrer
2015-12-17 19:38 - 2012-11-23 00:48 - 00000000 ___HD C:\Documents and Settings\Maryse\Voisinage réseau
2015-12-17 19:38 - 2012-11-23 00:48 - 00000000 ___HD C:\Documents and Settings\Maryse\Voisinage d'impression
2015-12-17 19:38 - 2012-11-23 00:48 - 00000000 ___HD C:\Documents and Settings\Maryse\Modèles
2015-12-17 19:38 - 2012-11-23 00:48 - 00000000 ____D C:\Documents and Settings\Maryse
2015-12-17 19:38 - 2012-11-23 00:45 - 00000000 __SHD C:\Documents and Settings\NetworkService\Local Settings\Historique
2015-12-17 19:38 - 2012-11-23 00:45 - 00000000 __SHD C:\Documents and Settings\NetworkService
2015-12-17 19:38 - 2012-11-23 00:45 - 00000000 ____D C:\Documents and Settings\NetworkService\Local Settings\Temp
2015-12-17 19:22 - 2013-02-24 15:15 - 00000000 ____D C:\Documents and Settings\Maryse\Local Settings\Application Data\Sun
2015-12-17 19:22 - 2013-02-24 12:57 - 00000000 ____D C:\Documents and Settings\Maryse\Local Settings\Application Data\Microsoft Help
2015-12-17 19:22 - 2012-12-25 22:48 - 00000000 ____D C:\Documents and Settings\Maryse\Local Settings\Application Data\Temp
2015-12-17 19:22 - 2012-11-23 00:48 - 00000000 __SHD C:\Documents and Settings\Maryse\Local Settings\Historique
2015-12-17 19:13 - 2014-11-30 11:07 - 00000000 ____D C:\Documents and Settings\Maryse\Local Settings\Application Data\IAC
2015-12-17 19:13 - 2013-02-20 08:11 - 00000000 ____D C:\Documents and Settings\Maryse\Local Settings\Application Data\Google
2015-12-17 19:12 - 2014-08-25 22:08 - 00000000 ____D C:\Documents and Settings\Maryse\Local Settings\Application Data\Adobe
2015-12-17 19:12 - 2013-10-20 19:03 - 00000000 ____D C:\Documents and Settings\Maryse\Local Settings\Application Data\Deployment
2015-12-17 19:12 - 2012-11-23 11:33 - 00000000 ____D C:\Documents and Settings\Maryse\Local Settings\Application Data\Ahead
2015-12-17 19:12 - 2012-11-23 10:12 - 00000000 __SHD C:\Documents and Settings\Maryse\IECompatCache
2015-12-17 19:12 - 2012-11-23 10:04 - 00000000 __SHD C:\Documents and Settings\Maryse\IETldCache
2015-12-17 19:12 - 2012-11-23 00:48 - 00000000 ___RD C:\Documents and Settings\Maryse\Favoris
2015-12-17 19:09 - 2014-04-02 18:41 - 00000000 ____D C:\Documents and Settings\Maryse\Application Data\TeamViewer
2015-12-17 19:09 - 2014-01-18 12:39 - 00000000 ____D C:\Documents and Settings\Maryse\Application Data\speedtest4354
2015-12-17 19:09 - 2013-03-15 15:53 - 00000000 ____D C:\Documents and Settings\Maryse\Bureau\Nouveau dossier
2015-12-17 19:09 - 2013-02-24 12:54 - 00000000 ____D C:\Documents and Settings\Maryse\Application Data\WinRAR
2015-12-17 19:09 - 2012-12-25 22:55 - 00000000 ____D C:\Documents and Settings\Maryse\Application Data\PriceGong
2015-12-17 19:09 - 2012-12-21 19:05 - 00000000 ____D C:\Documents and Settings\Maryse\Application Data\Voxmobili
2015-12-17 19:09 - 2012-11-23 12:13 - 00000000 ____D C:\Documents and Settings\Maryse\Application Data\Sun
2015-12-17 19:09 - 2012-11-23 12:09 - 00000000 ____D C:\Documents and Settings\Maryse\Application Data\vlc
2015-12-17 19:08 - 2015-11-15 09:47 - 00000000 ____D C:\Documents and Settings\Maryse\Application Data\Dropbox
2015-12-17 19:08 - 2015-06-20 05:58 - 00000000 ____D C:\avrescue
2015-12-17 19:08 - 2015-05-19 21:24 - 00000000 ____D C:\Documents and Settings\LocalService\Menu Démarrer\Programmes
2015-12-17 19:08 - 2015-05-19 21:24 - 00000000 ____D C:\Documents and Settings\LocalService\Menu Démarrer
2015-12-17 19:08 - 2015-03-19 19:17 - 00000000 ____D C:\Documents and Settings\Maryse\Application Data\dvdcss
2015-12-17 19:08 - 2015-03-02 19:15 - 00000000 ____D C:\Documents and Settings\All Users\Menu Démarrer\Programmes\EPSON Software
2015-12-17 19:08 - 2014-11-11 19:10 - 00000000 ____D C:\Documents and Settings\LocalService\Application Data\McAfee
2015-12-17 19:08 - 2014-08-24 09:41 - 00000000 ____D C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Google Chrome
2015-12-17 19:08 - 2014-05-08 16:57 - 00000000 ____D C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Java
2015-12-17 19:08 - 2014-05-05 08:31 - 00000000 _RSHD C:\Documents and Settings\Maryse\Application Data\Java
2015-12-17 19:08 - 2014-05-05 08:31 - 00000000 ___HD C:\Documents and Settings\Maryse\.plugins2
2015-12-17 19:08 - 2014-04-02 18:41 - 00000000 ____D C:\Documents and Settings\All Users\Menu Démarrer\Programmes\TeamViewer 9
2015-12-17 19:08 - 2014-02-06 17:27 - 00000000 ____D C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Windows PowerShell 1.0
2015-12-17 19:08 - 2014-02-03 10:05 - 00000000 ____D C:\Documents and Settings\LocalService\Local Settings\Application Data\SearchProtect
2015-12-17 19:08 - 2014-01-25 02:15 - 00000000 ____D C:\Documents and Settings\All Users\Menu Démarrer\Programmes\EPSON
2015-12-17 19:08 - 2014-01-18 12:39 - 00000000 ____D C:\Documents and Settings\Maryse\Application Data\Mozilla
2015-12-17 19:08 - 2014-01-18 12:39 - 00000000 ____D C:\Documents and Settings\Maryse\Application Data\freegames111
2015-12-17 19:08 - 2013-06-12 22:55 - 00000000 ____D C:\Documents and Settings\All Users\Menu Démarrer\Programmes\GamePacks
2015-12-17 19:08 - 2013-03-01 20:59 - 00000000 ____D C:\Documents and Settings\Default User\Local Settings\Application Data\Microsoft Help
2015-12-17 19:08 - 2013-02-27 18:23 - 00000000 ____D C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Microsoft Office
2015-12-17 19:08 - 2013-02-24 12:53 - 00000000 ____D C:\Documents and Settings\All Users\Menu Démarrer\Programmes\WinRAR
2015-12-17 19:08 - 2013-02-20 08:22 - 00000000 ____D C:\Documents and Settings\LocalService\Local Settings\Application Data\Google
2015-12-17 19:08 - 2013-02-20 08:16 - 00000000 ____D C:\Documents and Settings\Maryse\Application Data\Google
2015-12-17 19:08 - 2013-01-31 18:08 - 00000000 ____D C:\Documents and Settings\Maryse\Application Data\Ahead
2015-12-17 19:08 - 2012-12-25 22:49 - 00000000 ____D C:\Documents and Settings\All Users\Menu Démarrer\Programmes\IncrediMail
2015-12-17 19:08 - 2012-12-25 17:44 - 00000000 ____D C:\Documents and Settings\All Users\Menu Démarrer\Programmes\WinPcap
2015-12-17 19:08 - 2012-12-21 19:05 - 00000000 ____D C:\Documents and Settings\All Users\Menu Démarrer\Programmes\PC Sync
2015-12-17 19:08 - 2012-12-12 08:32 - 00000000 __SHD C:\Documents and Settings\LocalService\IETldCache
2015-12-17 19:08 - 2012-12-01 11:25 - 00000000 ____D C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Orange
2015-12-17 19:08 - 2012-11-25 19:19 - 00000000 ____D C:\Documents and Settings\Maryse\Application Data\Adobe
2015-12-17 19:08 - 2012-11-23 12:35 - 00000000 ____D C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Microsoft Silverlight
2015-12-17 19:08 - 2012-11-23 12:09 - 00000000 ____D C:\Documents and Settings\All Users\Menu Démarrer\Programmes\VideoLAN
2015-12-17 19:08 - 2012-11-23 12:08 - 00000000 ____D C:\Documents and Settings\All Users\Menu Démarrer\Programmes\IZArc
2015-12-17 19:08 - 2012-11-23 11:53 - 00000000 ____D C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Windows Live
2015-12-17 19:08 - 2012-11-23 11:18 - 00000000 ____D C:\Documents and Settings\All Users\Menu Démarrer\Programmes\CyberLink DVD Suite
2015-12-17 19:08 - 2012-11-23 09:24 - 00000000 ____D C:\Documents and Settings\Maryse\Application Data\Avira
2015-12-17 19:08 - 2012-11-23 01:31 - 00000000 __SHD C:\Documents and Settings\Default User\Local Settings\Historique
2015-12-17 19:08 - 2012-11-23 01:31 - 00000000 ___RD C:\Documents and Settings\Default User\Menu Démarrer\Programmes\Démarrage
2015-12-17 19:08 - 2012-11-23 01:31 - 00000000 ___RD C:\Documents and Settings\Default User\Menu Démarrer\Programmes
2015-12-17 19:08 - 2012-11-23 01:31 - 00000000 ___RD C:\Documents and Settings\Default User\Menu Démarrer
2015-12-17 19:08 - 2012-11-23 01:31 - 00000000 ___RD C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Démarrage
2015-12-17 19:08 - 2012-11-23 01:31 - 00000000 ___RD C:\Documents and Settings\All Users\Menu Démarrer
2015-12-17 19:08 - 2012-11-23 01:31 - 00000000 ___HD C:\Documents and Settings\Default User\Voisinage réseau
2015-12-17 19:08 - 2012-11-23 01:31 - 00000000 ___HD C:\Documents and Settings\Default User\Voisinage d'impression
2015-12-17 19:08 - 2012-11-23 01:31 - 00000000 ___HD C:\Documents and Settings\Default User\Modèles
2015-12-17 19:08 - 2012-11-23 01:31 - 00000000 ___HD C:\Documents and Settings\All Users\Modèles
2015-12-17 19:08 - 2012-11-23 01:31 - 00000000 ____D C:\Documents and Settings\Default User\Mes documents
2015-12-17 19:08 - 2012-11-23 01:31 - 00000000 ____D C:\Documents and Settings\Default User\Local Settings\Temp
2015-12-17 19:08 - 2012-11-23 01:31 - 00000000 ____D C:\Documents and Settings\Default User\Favoris
2015-12-17 19:08 - 2012-11-23 01:31 - 00000000 ____D C:\Documents and Settings\All Users\Favoris
2015-12-17 19:08 - 2012-11-23 01:30 - 00000000 ___HD C:\Documents and Settings\Default User
2015-12-17 19:08 - 2012-11-23 01:30 - 00000000 ____D C:\Documents and Settings\All Users
2015-12-17 19:08 - 2012-11-23 00:59 - 00000000 ____D C:\Documents and Settings\Maryse\Application Data\InstallShield
2015-12-17 19:08 - 2012-11-23 00:56 - 00000000 ____D C:\92c74c6e2a0251016c389d
2015-12-17 19:08 - 2012-11-23 00:47 - 00000000 __SHD C:\Documents and Settings\LocalService\Local Settings\Historique
2015-12-17 19:08 - 2012-11-23 00:47 - 00000000 __SHD C:\Documents and Settings\LocalService
2015-12-17 19:08 - 2012-11-23 00:43 - 00000000 __SHD C:\Documents and Settings\All Users\DRM
2015-12-17 19:08 - 2012-11-23 00:42 - 00000000 ___RD C:\Documents and Settings\Default User\Menu Démarrer\Programmes\Accessoires
2015-12-17 19:08 - 2012-11-23 00:41 - 00000000 ___RD C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Outils d'administration
2015-12-17 19:08 - 2012-11-23 00:41 - 00000000 ___RD C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Jeux
2015-12-17 19:08 - 2012-11-23 00:39 - 00000000 ___RD C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Accessoires
2015-12-15 21:56 - 2012-11-23 09:18 - 00106968 _____ (Avira Operations GmbH & Co. KG) C:\WINDOWS\system32\Drivers\avgntflt.sys
2015-12-15 21:47 - 2015-11-17 22:13 - 00000000 ____D C:\Program Files\McAfee Security Scan
2015-12-15 21:47 - 2014-11-05 07:57 - 00001812 _____ C:\Documents and Settings\All Users\Bureau\McAfee Security Scan Plus.lnk
2015-12-14 19:47 - 2015-11-15 09:44 - 00000000 ____D C:\Program Files\Dropbox

==================== Fichiers à la racine de certains dossiers =======

2015-12-17 19:09 - 2015-12-17 19:09 - 0010666 _____ () C:\Documents and Settings\Maryse\Application Data\how_recover+yhr.html
2015-12-17 19:09 - 2015-12-17 19:09 - 0002566 _____ () C:\Documents and Settings\Maryse\Application Data\how_recover+yhr.txt
2015-12-17 19:08 - 2015-12-17 19:08 - 0010666 _____ () C:\Documents and Settings\Maryse\Application Data\Microsoft\how_recover+yhr.html
2015-12-17 19:08 - 2015-12-17 19:08 - 0002566 _____ () C:\Documents and Settings\Maryse\Application Data\Microsoft\how_recover+yhr.txt
2013-02-11 19:40 - 2015-08-20 07:20 - 0007680 _____ () C:\Documents and Settings\Maryse\Local Settings\Application Data\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2015-12-17 19:22 - 2015-12-17 19:22 - 0010666 _____ () C:\Documents and Settings\Maryse\Local Settings\Application Data\how_recover+yhr.html
2015-12-17 19:22 - 2015-12-17 19:22 - 0002566 _____ () C:\Documents and Settings\Maryse\Local Settings\Application Data\how_recover+yhr.txt
2015-12-17 19:08 - 2015-12-17 19:08 - 0010666 _____ () C:\Documents and Settings\All Users\how_recover+yhr.html
2015-12-17 19:08 - 2015-12-17 19:08 - 0002566 _____ () C:\Documents and Settings\All Users\how_recover+yhr.txt
2012-11-25 19:19 - 2012-11-25 19:19 - 0000234 _____ () C:\Documents and Settings\All Users\Application Data\hpzinstall.log

Certains fichiers dans TEMP:
====================
C:\Documents and Settings\Maryse\Local Settings\Temp\APNSetup.exe
C:\Documents and Settings\Maryse\Local Settings\Temp\AskSLib.dll
C:\Documents and Settings\Maryse\Local Settings\Temp\avgnt.exe
C:\Documents and Settings\Maryse\Local Settings\Temp\dlLogic.exe
C:\Documents and Settings\Maryse\Local Settings\Temp\dropbox_sqlite_ext.{5f3e3153-5bce-5766-8f84-3e3e7ecf0d81}.tmpumu8xn.dll
C:\Documents and Settings\Maryse\Local Settings\Temp\GCVerifier.dll
C:\Documents and Settings\Maryse\Local Settings\Temp\install_helper.exe
C:\Documents and Settings\Maryse\Local Settings\Temp\jre-6u37-windows-i586-iftw.exe
C:\Documents and Settings\Maryse\Local Settings\Temp\jre-7u15-windows-i586-iftw.exe
C:\Documents and Settings\Maryse\Local Settings\Temp\jre-7u21-windows-i586-iftw.exe
C:\Documents and Settings\Maryse\Local Settings\Temp\jre-7u45-windows-i586-iftw.exe
C:\Documents and Settings\Maryse\Local Settings\Temp\jre-7u51-windows-i586-iftw.exe
C:\Documents and Settings\Maryse\Local Settings\Temp\jre-7u55-windows-i586-iftw.exe
C:\Documents and Settings\Maryse\Local Settings\Temp\jre-8u31-windows-au.exe
C:\Documents and Settings\Maryse\Local Settings\Temp\jre-8u45-windows-au.exe
C:\Documents and Settings\Maryse\Local Settings\Temp\mgsqlite3.dll
C:\Documents and Settings\Maryse\Local Settings\Temp\nshE6.exe
C:\Documents and Settings\Maryse\Local Settings\Temp\nshE9.exe
C:\Documents and Settings\Maryse\Local Settings\Temp\nsq4A.exe
C:\Documents and Settings\Maryse\Local Settings\Temp\nsuE1.exe
C:\Documents and Settings\Maryse\Local Settings\Temp\nsyE0.exe
C:\Documents and Settings\Maryse\Local Settings\Temp\ose00000.exe
C:\Documents and Settings\Maryse\Local Settings\Temp\setup_wm.exe
C:\Documents and Settings\Maryse\Local Settings\Temp\SPSetup.exe
C:\Documents and Settings\Maryse\Local Settings\Temp\spstub.exe
C:\Documents and Settings\Maryse\Local Settings\Temp\SweetIESetup.exe
C:\Documents and Settings\Maryse\Local Settings\Temp\tbIncr.dll
C:\Documents and Settings\Maryse\Local Settings\Temp\UNINSTALL.EXE
C:\Documents and Settings\Maryse\Local Settings\Temp\vcredist_x86.exe
C:\Documents and Settings\Maryse\Local Settings\Temp\verifier.exe
C:\Documents and Settings\Maryse\Local Settings\Temp\WhiteLabelSetup.exe
C:\Documents and Settings\Maryse\Local Settings\Temp\_is273.exe
C:\Documents and Settings\Maryse\Local Settings\Temp\{349B7A48-C290-4B42-8285-22B6BD82DF16}-26.0.1410.43_25.0.1364.172_chrome_updater.exe


==================== Bamital & volsnap =================

(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)

C:\WINDOWS\explorer.exe => Le fichier est signé numériquement
C:\WINDOWS\system32\winlogon.exe => Le fichier est signé numériquement
C:\WINDOWS\system32\svchost.exe => Le fichier est signé numériquement
C:\WINDOWS\system32\services.exe => Le fichier est signé numériquement
C:\WINDOWS\system32\User32.dll => Le fichier est signé numériquement
C:\WINDOWS\system32\userinit.exe => Le fichier est signé numériquement
C:\WINDOWS\system32\rpcss.dll => Le fichier est signé numériquement
C:\WINDOWS\system32\dnsapi.dll => Le fichier est signé numériquement
C:\WINDOWS\system32\Drivers\volsnap.sys
[2008-04-13 17:56] - [2008-04-13 17:56] - 0053376 ____A () D41D8CD98F00B204E9800998ECF8427E

C:\WINDOWS\system32\Drivers\volsnap.sys => pas de Nom Entreprise <===== ATTENTION


==================== Fin de FRST.txt ============================

Publicité


Signaler le contenu de ce document

Publicité